Detecting malware domains at the upper DNS hierarchy
USENIX Security Symposium, pp. 27-27, 2011.
previous work Kopisprevious DNS reputation systemaddition KopisDNS trafficDNS hierarchyMore(5+)
In recent years Internet miscreants have been leveraging the DNS to build malicious network infrastructures for malware command and control. In this paper we propose a novel detection system called Kopis for detecting malware-related domain names. Kopis passively monitors DNS traffic at the upper levels of the DNS hierarchy, and is able t...More
PPT (Upload PPT)